General

New cxs v1.51

Changes:

  • Sort Quarantine UI users
  • If –quarantine or –delete fails (e.g. an immutable file), report failure to do so. Failure to quarantine will no longer attempt removal of the original file
  • Only “View” quarantine files in UI if they are text files
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New csf v5.17

Changes:

  • Updated Server Check for cPanel Update configuration check to cater for the new format
  • Disable LFD service in DA on uninstall of csf using SED instead of REPLACE

New cxs v1.50

Changes:

  • Fixed a problem with the use of File::Copy and the quarantine system where files that are moved across file systems do not retain the correct permissions

New cxs v1.49

Changes:

  • Display complete cxs command options at the top of reports, not just the CLI command (i.e. include defaults and cxs.default entries)
  • Added a “View Quarantine” button at the bottom of the “View Quarantine User” UI page to return to the quarantine view
  • Added default clamd rpm and apt-get socket location detection (/var/run/clamav/clamd.sock and /var/run/clamav/clamd.ctl)
  • DirectAdmin development work (not currently supported) (RedHat Enterprise v3+/CentOS v3+/Debian v5+)
  • Added code for future multiple license servers
  • Fixed a problem with the use of File::Copy and the quarantine system where files that are moved across file systems do not retain the correct ownership
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New csf v5.16

Changes:

  • Fixed missing perm.png from DA install
  • Fixed Temporary IP Entries table headers in UI
  • If DENY_IP_LIMIT is reached, remove excess IPs from iptables as well as csf.deny (previously only removed from csf.deny)
  • csf on cPanel servers automatically re-enables the cPanel Bandwith chains after iptables is configured. If bandmin is not functioning, or you don’t use the bandmin stats you can disable this new option LF_CPANEL_BANDMIN (enabled by default on cPanel servers)

New cxs v1.48

Changes:

  • Modified FTP scanning to honour hfile: ignore file entries
  • Fixed problem with –qoptions [] sending all scan result matches to quarantine after a single legitimate match was found, regardless of the –qoptions [] specified

New cxs v1.47

Changes:

  • Fixed problem with UI upgrade sleeping before upgrading (as introduced for cron jobs). Upgrading to this version will still sleep through the UI, but subsequent versions should be fine. Instead of using the UI, using the CLI will avoid this problem for this upgrade, i.e.: cxs -U

New cxs v1.46

Changes:

  • Restore from quarantine in UI now preserves file ownership of the restored file
  • Prefill UI Quarantine directory if set in cxs.defaults
  • Added new option to Quarantine UI to bulk Restore files in the same way as bulk Delete works
  • Exploit fingerprint definitions database additions

New cxs v1.45

Changes:

  • Added new option –qoptions [mMOLfSGchexdnwTEv]. By default –quarantine [dir]> will move all file matches. If –qoptions [] is also used then only the selected file types will be moved
  • Added –qoptions [mMOLfSGchexdnwTEv] to UI
  • Improvements to –decode ([D]) option
  • Added –upgrade timer to sleep for up to 1800 seconds when running as a cron job to avoid overloading the license server
  • Added the the –jumpfrom [user] and –jumpto [user] options to the UI
  • Exploit fingerprint definitions database additions

New csf v5.15

Changes:

  • Check for multiple Ports settings for sshd in /etc/ssh/sshd/_config when the LF_SELECT option is enabled
  • Updated SMTPAUTH regex to detect more login authentication methods
  • Updated AUTHRELAY regex to detect more login authentication methods
  • Added option to UI to permanently block temporarily blocked IP’s